← 返回 Skills 市场
506
总下载
0
收藏
0
当前安装
2
版本数
在 OpenClaw 中安装
/install contract-risk-helper
功能描述
Contract Risk Helper — scan contracts for common risk clauses. Triggers on 合同风险、合同审查、条款风险、帮我看合同、合同检查. Read-only local analysis, no network calls, no credenti...
使用说明 (SKILL.md)
Contract Risk Helper
Overview
Contract Risk Helper identifies common risk clauses in contract text using local pattern matching. No network calls, no credential access, no exec — pure read-only text analysis.
⚠️ Disclaimer: Preliminary identification only. Not legal advice. Consult a qualified attorney for important decisions.
When to Use
- User provides contract text and asks for risk scan
- Keywords: 合同风险、合同审查、条款风险、帮我看合同、合同检查、扫描合同
Workflow
- Receive contract text — user provides full contract or specific clauses
- Identify contract type — service agreement, NDA, employment, lease, etc.
- Run local pattern scan — match against known risk patterns (reference file)
- Return findings — categorized by severity (critical/warning/advisory) with suggestions
- Flag for attorney review — for critical items
Risk Categories
| Severity | Examples |
|---|---|
| 🔴 Critical | Unlimited liability, no termination for convenience, broad indemnification |
| 🟡 Warning | Net 60+ payment, auto-renewal without notice, work-for-hire without scope limit |
| 🟢 Advisory | Missing dispute resolution clause, ambiguous definitions |
Output Format
## 风险扫描结果
共发现 N 个风险项
### 🔴 Critical (X)
- **[条款位置]** 描述
→ 建议操作
### 🟡 Warning (X)
- **[条款位置]** 描述
→ 建议操作
Notes
- All analysis is local pattern matching against reference/common-risks.md
- No data leaves the local environment
- Does not store or transmit contract content
- No external API calls
安全使用建议
This package appears to do exactly what it says: local regex-based identification of common contract risks. Before installing or running, consider: (1) the skill will process whatever contract text you provide — avoid submitting extremely sensitive or regulated data unless you trust the host environment, (2) verify your platform does not inadvertently log or transmit skill inputs (the code itself does not transmit data), and (3) note small non-security oddities (skill.json version differs from registry version and the references file exists but is not programmatically used). If you need legal certainty, use this as a preliminary tool only and consult a qualified attorney.
功能分析
Type: OpenClaw Skill
Name: contract-risk-helper
Version: 1.0.1
The contract-risk-helper skill is a legitimate tool designed for local text analysis. The code in handler.py and scripts/scanner.js uses standard regular expressions to identify specific legal risk patterns (e.g., unlimited liability, auto-renewal) without any network calls, file system access, or shell execution. There are no signs of prompt injection, data exfiltration, or obfuscation across any of the files.
能力评估
Purpose & Capability
Name/description (contract risk scanning) matches the provided code and reference material. The handlers implement pattern matching for common contract clauses and return categorized results; nothing in the package requests unrelated capabilities (no cloud credentials, no unrelated binaries).
Instruction Scope
SKILL.md directs only local pattern matching over user-provided contract text. The runtime code (handler.py and scripts/scanner.js) only reads in text arguments and applies regexes; it does not read system files, environment variables, or contact external endpoints. The SKILL.md claim of 'no network calls, no exec' is consistent with the code (there are shebang lines in scripts but no subprocess or shell.exec usage).
Install Mechanism
No install spec is present (instruction-only from platform perspective) and included code has no external download or package-install behavior. Files are plain source code and tests; nothing is fetched from arbitrary URLs or written to unexpected locations.
Credentials
No required environment variables, credentials, or config paths are declared or used. The skill appropriately requests no secrets given its stated purpose.
Persistence & Privilege
The skill does not request always:true and does not modify other skills or system-wide settings. It is user-invocable and can be invoked autonomously per platform defaults, which is expected for this kind of skill.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install contract-risk-helper - 安装完成后,直接呼叫该 Skill 的名称或使用
/contract-risk-helper触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
Initial release. Read-only local pattern scan for contract risk clauses. No exec, no network, no credential access.
v1.0.0
Initial release of the contract-risk-helper skill.
- Introduced an auto-update tool for managing OpenClaw skill updates.
- Provides safe update features: version checking, automatic local backups, and rollback support.
- Includes configuration management (blacklist, auto-upgrade strategies, quiet hours).
- Only reads local files; all actual updates are executed via the clawhub CLI.
- Easy management of backups, cache, and update strategies through simple command-line commands.
元数据
常见问题
Contract Risk Helper 是什么?
Contract Risk Helper — scan contracts for common risk clauses. Triggers on 合同风险、合同审查、条款风险、帮我看合同、合同检查. Read-only local analysis, no network calls, no credenti... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 506 次。
如何安装 Contract Risk Helper?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install contract-risk-helper」即可一键安装,无需额外配置。
Contract Risk Helper 是免费的吗?
是的,Contract Risk Helper 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Contract Risk Helper 支持哪些平台?
Contract Risk Helper 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Contract Risk Helper?
由 haidong(@harrylabsj)开发并维护,当前版本 v1.0.1。
推荐 Skills